Summary: | <x11-libs/qt-webkit-4.5.2-r1: Array indexing vulnerability (CVE-2009-0945) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Robert Buchholz (RETIRED) <rbu> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | normal | CC: | jaak |
Priority: | High | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | http://support.apple.com/kb/HT3549 | ||
Whiteboard: | B2 [noglsa] | ||
Package list: | Runtime testing required: | --- |
Description
Robert Buchholz (RETIRED)
2009-05-30 11:30:14 UTC
The reproducer crashes with 4.4.2-r1, haven't tried 4.5.1. <script> var p = document.createElementNS("http://www.w3.org/2000/svg","path"); p.pathSegList.insertItemBefore(null,1); </script> According to https://bugzilla.redhat.com/show_bug.cgi?id=506703#c15 this has been fixed in Qt 4.5.2. The oldest version of qt-webkit in portage is 4.5.3. Please don't close security bugs; even the really old ones. Added to existing GLSA request. This issue has been fixed since Oct 11, 2009. No GLSA will be issued. |